tomcat-dev mailing list archives

Hi,
Simple question - I'm attempting to ensure our tomcat servers are as secure
as possible, and it occurs to me that we are very reliant on the Tomcat
session cookie not being predictable.
Where should I look to check, and is this an area that has been covered
already?
Thanks,
Joe.
Legal Disclaimer:-
Please be aware that messages sent over
the Internet may not be secure and should
not be seen as forming a legally binding
contract unless otherwise stated.